re:RPM Verification
From: bigrigdriver (bigrigdriver1L_at_netscape-dot-net.no-spam.invalid)
Date: 10/25/04
- Next message: snowolf: "Rebuild Kernel to support VFAT"
- Previous message: Michael Heiming: "Re: Linux Trojan Circulating"
- In reply to: Giobbe: "RPM Verification"
- Next in thread: Dr. Robert Meier: "Re: RPM Verification"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: 25 Oct 2004 03:09:39 -0500
The signature thing refers to the pgp (or gpgp) signature which
verifies the origin of the file, and, idirectly, it's degree of
integrity. If I'm not mistaken, 'Drake is an rpm based OS? Then, when
you download a package, also d/l the md5 checksum. Before installing,
run 'rpm --checkig <packagename>' to verify it's authinticity.
Signatures are bought and paid for through one of several
authinticating sources. When the signature expires, rpm will not be
able to veriry the source, therefore you get the kind of message you
mentioned.
*-----------------------*
Posted at:
www.GroupSrv.com
*-----------------------*
- Next message: snowolf: "Rebuild Kernel to support VFAT"
- Previous message: Michael Heiming: "Re: Linux Trojan Circulating"
- In reply to: Giobbe: "RPM Verification"
- Next in thread: Dr. Robert Meier: "Re: RPM Verification"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
